Exploitation of the vBulletin vulnerability tracked as CVE-2025-48827 and CVE-2025-48828 started shortly after disclosure.
The post vBulletin Vulnerability Exploited in the Wild appeared first on SecurityWeek.
Category Added in a WPeMatico Campaign
Chrome to Distrust Chunghwa Telecom and Netlock Certificates
Patterns of concerning behavior led Google to remove trust in certificates from Chunghwa Telecom and Netlock from Chrome.
The post Chrome to Distrust Chunghwa Telecom and Netlock Certificates appeared first on SecurityWeek.
Alleged Conti, TrickBot Gang Leader Unmasked
Russian national Vitaly Nikolaevich Kovalev is believed to be the leader of the Conti and TrickBot cybercrime groups.
The post Alleged Conti, TrickBot Gang Leader Unmasked appeared first on SecurityWeek.
Technical Details Published for Critical Cisco IOS XE Vulnerability
The critical flaw, tracked as CVE-2025-20188 (CVSS score of 10/10), allows attackers to execute arbitrary code remotely.
The post Technical Details Published for Critical Cisco IOS XE Vulnerability appeared first on SecurityWeek.
Counter Antivirus Service AVCheck Shut Down by Law Enforcement
Counter antivirus services such as AVCheck allow cybercriminals to test whether their malware is detected by antivirus products.
The post Counter Antivirus Service AVCheck Shut Down by Law Enforcement appeared first on SecurityWeek.
US Government Is Investigating Messages Impersonating Trump’s Chief of Staff, Susie Wiles
Elected officials, business executives and other prominent figures in recent weeks received messages from someone impersonating Susie Wiles.
The post US Government Is Investigating Messages Impersonating Trump’s Chief of Staff, Susie Wiles appeared first on SecurityWeek.
In Other News: PoC for Fortinet Bug, AI Model Subverts Shutdown, RAT Source Code Leaked
Noteworthy stories that might have slipped under the radar: simple PoC code released for Fortinet zero-day, OpenAI O3 disobeys shutdown orders, source code of SilverRAT emerges online.
The post In Other News: PoC for Fortinet Bug, AI Model Subverts Shutdown, RAT Source Code Leaked appeared first on SecurityWeek.
Firebase, Google Apps Script Abused in Fresh Phishing Campaigns
Security researchers flag two phishing campaigns abusing Firebase and Google Apps Script to host malware and fake login pages.
The post Firebase, Google Apps Script Abused in Fresh Phishing Campaigns appeared first on SecurityWeek.
US Sanctions Philippine Company for Supporting Crypto Scams
The US Treasury Department US has slapped sanctions on Funnull Technology for providing support to cryptocurrency investment scams.
The post US Sanctions Philippine Company for Supporting Crypto Scams appeared first on SecurityWeek.
Watch Now: Why Context is a Secret Weapon in Application Security Posture Management
Join the live webinar to understand why data in itself is not enough to make informed decisions for prioritization.
The post Watch Now: Why Context is a Secret Weapon in Application Security Posture Management appeared first on SecurityWeek.